CVE-2020-10286

Summary

the main user account has restricted privileges but is in the sudoers group and there is not any mechanism in place to prevent sudo su or sudo -i to be run gaining unrestricted access to sensible files, encryption, or issue orders that disrupt robot operation.

Affected Software

VendorProductVersion RangeStatus
uFactoryxArm 5 Lite, xArm 6 and xArm 7v1.5.0 and beforeaffected

Weaknesses

  • CWE-656: CWE-656

ADP Enrichment

CVE Program Container

Additional References

References